Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #2485


Module Name
HiKey PKI Token
FIPS 140-2
 Historical Reason
SP 800-131A transition which disallows key wrapping not compliant to SP 800-38F.
Overall Level
With tamper evident seals and security devices installed as indicated in the Security Policy. No assurance of the minimum strength of generated keys
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
Module Type
Multi-Chip Stand Alone
The HiKey token modules are multi-chip standalone implementations of a cryptographic module. The Hikey token modules are USB tokens that adhere to ISO/IEC specifications for Integrated Circuit Chip (ICC) based identification cards.
Tested Configuration(s)
  • N/A
Approved Algorithms
DRBG Cert. #608
RSA Cert. #1585
SHS Cert. #2557
Triple-DES Cert. #1783
Other Algorithms
NDRNG; Triple-DES (Cert. #1783, key wrapping methodology provides 112-bits of encryption strength; non-compliant less than 112-bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength).
Hardware Versions
Firmware Versions
HiKey COS V3.0


Chunghwa Telecom Co., Ltd.
No.99, Dianyan Road
Taoyuan, Taiwan 326
Republic of China

Yeou-Fuh Kuan
Phone: +886-3-424-4333
Fax: +886-3-424-4129
Char-Shin Miou
Phone: +886 3 424 4381
Fax: +886-3-424-4129

Validation History

Date Type Lab
12/14/2015 Initial CGI Information Systems & Management Consultants Inc
1/22/2016 Update CGI Information Systems & Management Consultants Inc